On 08/10/17 23:22, Eric Rescorla wrote: > You seem to be responding to some other thread.
Yep. I changed the subject line. Randy's substantive message however is crystal clear. And is one that WG participants ought take to heart IMO. Pretending that some changes to TLS would magically be limited in scope to so-called "data centres" is BS. I'm really really puzzled that some otherwise sensible folks appear unable to see that. S > As both Adam Langley and I > mentioned, none of the changes that anyone is investigating for reducing > middlebox-induced breakage affect the cryptographic properties of TLS. > > -Ekr > > > On Sun, Oct 8, 2017 at 2:42 PM, Randy Bush <ra...@psg.com> wrote: > >> there are a lot of us lurkers out here a bit horrified watching this wg >> go off the rails. >> >> it would help if vendors of devices which break privacy would stop >> speaking for 'datacenters' and let datacenters speak for themselves. i >> have not seen any doing so. my $dayjob has >10 medium sized datacenters >> serving everything from banks to telcos to scaled cloud services. i can >> not find folk in our datacenter groups who see a need to break e2e >> encryption. >> >> if the interception proposals ensured that user is notified and able to >> prevent session interception, then i would believe this. but if they do >> not, then let's face it, this is all about selling surveillance gear to >> snooping enterprises and repressive regiemes where people with guns take >> you away at 3am because your session was decoded. >> >> can we please provide real end to end privacy or call this wg something >> else? >> >> randy >> >> _______________________________________________ >> TLS mailing list >> TLS@ietf.org >> https://www.ietf.org/mailman/listinfo/tls >> > > > > _______________________________________________ > TLS mailing list > TLS@ietf.org > https://www.ietf.org/mailman/listinfo/tls >
signature.asc
Description: OpenPGP digital signature
_______________________________________________ TLS mailing list TLS@ietf.org https://www.ietf.org/mailman/listinfo/tls
